Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft
File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json)
Hash identifier: 8j1Rxq8ITSRNXljhDzJndyczJZkYeJv6GxknPm0M/Ro=
Subject key identifier: D2:E0:70:AC:34:85:74:83:10:1B:49:A0:9F:CC:3B:93:2B:96:12:66
Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71
Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71
Certificate serial: 226B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft
Manifest number: 225D
Signing time: Fri 31 Jan 2025 15:52:49 +0000
Manifest this update: Fri 31 Jan 2025 15:52:49 +0000
Manifest next update: Fri 07 Feb 2025 15:52:49 +0000
Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: Hl+GNWswebRGouvs5JNgLZQeXbIj717A7UZHo3WhpB0=)
2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: 8mIOCO6QpDE7EtPouAHKOU6jLmPWkYnpnE1kJgri2NI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8811 (0x226b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71
Validity
Not Before: Jan 31 15:52:49 2025 GMT
Not After : Feb 7 15:52:49 2025 GMT
Subject: CN=679cf1d1-082d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:13:8b:fb:25:d6:38:0f:49:a7:e6:92:3f:69:
f8:4a:18:f8:65:c6:20:f1:e6:aa:3c:fe:67:c1:05:
58:f5:f6:b3:ac:b7:62:84:f1:23:47:dd:37:f4:7f:
e0:25:95:fe:e6:47:a7:d0:90:4b:15:06:1b:44:a6:
5f:a8:62:7a:7b:a7:df:14:07:75:f0:19:37:c2:ff:
90:b4:2f:38:3d:d5:78:92:89:38:93:56:b7:50:01:
df:c0:b6:76:19:88:6d:61:e4:1d:4b:14:0a:3b:8a:
58:3a:27:1d:52:66:8e:c2:5d:1d:10:ae:83:fd:03:
62:03:42:c3:fb:4e:34:e2:39:39:c5:eb:59:e7:7d:
7e:0f:d9:c6:0e:2e:d3:a3:69:ba:55:29:29:4f:6f:
ba:b6:ec:96:d3:53:05:6e:dc:9c:1b:75:77:ac:85:
de:c5:e0:0d:e2:62:01:97:1a:af:84:13:29:e4:8f:
64:cd:ad:18:70:0c:b7:ee:7b:df:c7:4e:1b:89:55:
7e:ae:43:73:5c:5c:af:39:66:a2:b4:97:72:3a:12:
d4:c0:d5:ea:06:53:60:10:c1:43:1f:2a:7e:29:24:
42:37:bf:1c:5d:86:7a:3e:b5:7d:6c:4e:2e:c9:ed:
e8:b9:c9:b7:8f:11:47:08:c6:ff:bf:b0:72:d9:da:
29:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E0:70:AC:34:85:74:83:10:1B:49:A0:9F:CC:3B:93:2B:96:12:66
X509v3 Authority Key Identifier:
keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d9:82:e6:76:e1:e0:fa:7c:87:cc:f1:00:47:1f:c3:c8:a5:30:
23:ff:fa:60:4e:26:8e:b5:ed:78:fb:5c:a5:29:24:42:2b:03:
00:e1:28:b1:c0:71:77:de:39:41:8d:27:a8:b4:00:7d:d0:1f:
6b:3d:69:05:c3:30:95:ce:fd:ef:ed:af:bc:c6:e9:59:c0:e2:
c7:f4:eb:6c:bd:f5:d2:88:d4:a3:a4:d4:38:42:9f:35:8c:75:
b0:de:1a:05:36:29:3a:fe:a7:be:b4:7d:db:a8:fd:ec:d7:51:
9b:83:07:d8:18:68:7d:98:42:a5:d2:4f:08:88:3a:22:c7:5c:
40:b2:17:d9:a4:16:d8:82:cc:11:68:d0:9f:9c:7a:60:c5:eb:
c9:2f:f4:83:d9:75:ef:83:17:4e:0e:99:50:60:43:80:18:19:
d8:7b:39:0b:23:fc:30:0b:fd:a0:ae:44:06:87:17:5a:19:9f:
d5:bc:c9:9c:63:9e:1d:dc:f5:b3:1c:c1:fb:be:72:dc:5e:ee:
23:23:30:e8:65:e6:3d:a8:03:82:dc:da:6b:c3:56:ca:67:e6:
da:32:67:cc:89:c4:e3:f8:47:0a:53:43:e6:4c:5b:54:9f:c7:
72:d4:14:bf:1c:74:d8:12:71:1a:84:7f:46:2d:8c:fd:25:c7:
31:4c:67:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:23:51 2025 by rpki-client